Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Pvub5ztTS47f0XG6tBZE9ngX8Rw.roa
File: Pvub5ztTS47f0XG6tBZE9ngX8Rw.roa (raw, json)
Hash identifier: euQ5dqT6xwCfoTsPu9P7kfQ9UGdbPzkkEJWSyFwCBTw=
Subject key identifier: 3E:FB:9B:E7:3B:53:4B:8E:DF:D1:71:BA:B4:16:44:F6:78:17:F1:1C
Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2
Certificate serial: 01942747368971E6F02ED5ABB3D03418BC34
Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Pvub5ztTS47f0XG6tBZE9ngX8Rw.roa
Signing time: Thu 02 Jan 2025 13:49:25 +0000
ROA not before: Thu 02 Jan 2025 13:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62904
IP address blocks: 2a0b:7140:8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:36:89:71:e6:f0:2e:d5:ab:b3:d0:34:18:bc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2
Validity
Not Before: Jan 2 13:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3efb9be73b534b8edfd171bab41644f67817f11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:23:da:ec:64:32:13:fb:bd:f8:45:c5:88:c7:
38:34:3c:c8:a9:40:03:74:ac:b7:80:5c:0a:b4:c2:
24:e3:26:5a:44:89:a9:53:91:a2:f5:c0:dd:0e:2d:
c1:1c:0b:41:67:27:b3:ed:36:19:84:f2:f6:78:a8:
1f:7a:11:5b:07:45:7a:e6:d9:a2:2c:77:0b:be:28:
d4:58:26:5b:e3:1c:b3:87:0e:28:f1:0e:af:37:d7:
20:f2:06:b3:10:99:a5:9b:50:e8:ad:08:56:b0:86:
92:22:19:2d:30:07:c1:de:ea:9f:47:6e:e6:0f:b0:
3c:42:28:4e:c4:f7:3e:c1:40:29:9d:ca:c1:51:f4:
eb:14:19:6f:30:18:37:8e:a9:64:16:46:2e:4a:6b:
73:ef:62:c0:f8:f1:86:62:9b:be:bf:2a:97:cc:4a:
f2:96:11:ab:c4:08:10:5a:b9:bd:a7:9d:8a:05:ab:
4f:09:fc:2d:de:e1:0c:a6:20:62:c5:dc:23:c3:ce:
04:6b:c0:f2:16:78:73:98:0e:12:b2:62:35:7f:a9:
dd:1d:4b:17:fe:b3:60:8f:da:7f:f2:95:fb:f2:8e:
08:95:ed:67:27:b0:32:d8:ed:ad:a5:b3:bc:cb:06:
b3:49:b0:6e:5f:95:10:ed:2b:a3:70:c8:46:9a:c1:
3c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FB:9B:E7:3B:53:4B:8E:DF:D1:71:BA:B4:16:44:F6:78:17:F1:1C
X509v3 Authority Key Identifier:
keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Pvub5ztTS47f0XG6tBZE9ngX8Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:7140:8::/48
Signature Algorithm: sha256WithRSAEncryption
2a:21:85:93:6a:2e:23:9c:1a:0a:0f:9a:16:1c:0e:86:f9:8d:
f7:7f:13:72:61:68:81:0f:08:51:e9:e3:2f:1f:cf:5c:12:7a:
73:f1:a5:c1:83:90:14:33:76:d7:7d:f5:1f:91:6c:8f:30:c6:
8f:22:ad:db:0f:dc:10:60:c6:67:cb:62:6c:21:c3:71:11:b9:
3a:2c:8b:81:ef:0d:35:e0:8d:46:e6:58:46:54:2c:9d:22:90:
5b:fc:dd:b3:27:5f:4e:a0:a0:19:3a:a7:ea:e9:c3:0b:d0:2c:
f6:71:39:21:f9:b2:a9:88:79:ae:0d:b8:53:dd:4c:28:58:fd:
77:18:92:4a:11:b4:60:fa:11:c0:fd:ef:4e:9a:dd:07:9c:50:
80:14:31:ae:1d:5b:b9:11:4a:80:8d:9a:fb:4d:8e:e5:53:cd:
e6:c4:c4:e6:f3:04:07:f9:d0:21:28:a5:32:f5:4e:77:fa:07:
70:e6:84:ca:33:b0:99:03:ae:07:0d:e4:92:f4:fd:bb:88:00:
ed:5a:65:ce:9b:6d:4a:92:cc:71:ba:75:9a:40:93:37:66:8c:
92:43:97:e5:9d:25:26:37:09:eb:69:44:b5:2f:c8:ae:d1:47:
5a:ac:ca:b6:b6:92:b3:6c:6f:84:c6:86:04:cd:e1:45:cd:8f:
9c:25:7b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:18:59 2025 by rpki-client